[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [csmith-dev] arthur's bugs

To: John Regehr <regehr@cs.utah.edu>
Subject: Re: [csmith-dev] arthur's bugs
From: "Arthur O'Dwyer" <arthur.j.odwyer@gmail.com>
Date: Fri, 29 Apr 2011 14:00:05 -0700
Cc: csmith-dev@flux.utah.edu
In-reply-to: <4DBB207F.5090501@cs.utah.edu>
List-archive: </listarchives/csmith-dev>
List-help: <mailto:csmith-dev-request@flux.utah.edu?subject=help>
List-id: Csmith Development Mailing List <csmith-dev.flux.utah.edu>
List-post: <mailto:csmith-dev@flux.utah.edu>
List-subscribe: <http://www.flux.utah.edu/mailman/listinfo/csmith-dev>, <mailto:csmith-dev-request@flux.utah.edu?subject=subscribe>
List-unsubscribe: <http://www.flux.utah.edu/mailman/listinfo/csmith-dev>, <mailto:csmith-dev-request@flux.utah.edu?subject=unsubscribe>
References: <4DB99A7B.60804@cs.utah.edu> <BANLkTi=KrZ==AXzdLOyJBGWKcJtEOkrbpg@mail.gmail.com> <4DBB0D26.3050002@cs.utah.edu> <BANLkTi=wx5f4fd9+jp0LbQHin5bR40UTEg@mail.gmail.com> <4DBB207F.5090501@cs.utah.edu>

On Fri, Apr 29, 2011 at 1:33 PM, John Regehr <regehr@cs.utah.edu> wrote:
>> By the way, I've been wondering about your original motivation for
>> printing only a final checksum,
>
> Basically two reasons.
>
> First, we wanted to give the compiler maximum freedom to mess with the
> program without being constrained by the optimization-squashing restrictions
> of an external function call.

Optimization-squashing, you say? :)  One man's squash is another man's enable.
http://www.ciselant.de/projects/gcc_printf/gcc_printf.html
Of course, in fairness, it wouldn't be very likely that a randomly
generated format string would happen to match one of the triggers
listed in that article; I don't really expect that GCC would do
anything weird with printf("%d %s %x",...).  But you never know.
Derek Jones was talking just last week on this list about a
hypothetical buggy compiler that would misoptimize printf("%d", (myint
= 42L)).

And, on the *other* other other hand, it's also possible for a
compiler to have a bug related to external function calls that doesn't
reproduce with intra-module calls.  For example, maybe the compiler
assumes that a particular register is callee-save, but in fact that
register is trashed by a sufficiently complicated function.  Or maybe
passing certain types through varargs is an issue.  There are plenty
of interesting bug opportunities with printf! :)

-Arthur

Follow-Ups:
- Re: [csmith-dev] arthur's bugs
  - From: Yang Chen <chenyang@cs.utah.edu>

References:
- [csmith-dev] arthur's bugs
  - From: John Regehr <regehr@cs.utah.edu>
- Re: [csmith-dev] arthur's bugs
  - From: "Arthur O'Dwyer" <arthur.j.odwyer@gmail.com>
- Re: [csmith-dev] arthur's bugs
  - From: John Regehr <regehr@cs.utah.edu>
- Re: [csmith-dev] arthur's bugs
  - From: "Arthur O'Dwyer" <arthur.j.odwyer@gmail.com>
- Re: [csmith-dev] arthur's bugs
  - From: John Regehr <regehr@cs.utah.edu>

Prev by Date: Re: [csmith-dev] arthur's bugs
Next by Date: Re: [csmith-dev] arthur's bugs
Previous by thread: Re: [csmith-dev] arthur's bugs
Next by thread: Re: [csmith-dev] arthur's bugs
Index(es):
- Date
- Thread